URL Security cannot be asserted.

Hi folks,
I'm currently working on eBusiness r12 (12.0.6)
I tried to update a specific Role as followed:
1- click on Roles & Role Inheritance
2- under Roles & Responsibilities, select the specific Role (a custom role) and click the update Icon
3- the specific custom Role is on update mode, when I click the update icon beside the permissions, then
Error
URL Security cannot be asserted. The given URL has either expired or has been tampered with. Please contact your System Administrator for help.

Hi Hussein,
I can now modify the grant for the specific custom role.
The application was bounced during the night.
But I'm still perplex; I can't reproduce the error.
I check the log files in the application server; I didn't see a significative message relate with the error occured yesterday.
Regards
JC

Similar Messages

URL Security cannot be asserted. The given URL has either expired.

Hi folks ,
When I click on the one of the Submit button on my Page ... getting this below error. Please can you help in resolving this.
URL Security cannot be asserted. The given URL has either expired or has been tampered with. Please contact your System Administrator for help.*
All my Pages , XML , Class file I have kept on the Unix Box and bounced it. Even after this also its gives the same error.
Please help.
Raghu

Hey Anand , Thanks a lot.
I thought its a generic error , so did not provided many details.
And I got to resolution for this error as well.
Scenario is follow :
The search buttom was followed by a cusome page. Actually it was calling a a BNE application function. As I was creating a uploading integrator (WEB ADI ) , there was no need to give the BNE function parameters in the function definition. Removed the function parameters and hence error got cleared.
Raghu

"Page Security cannot be asserted" error

I have a page that depending on business logic will give various error dialogs (Y/N), however I keep getting the following error (when returning to self/calling page): 
<<Page Security cannot be asserted. The page has either expired or has been tampered.>>
 
I've was getting this when I pressed no so I did a work around by explicitly forwarding to current page: 
<< super.setForwardURL(oapagecontext, true, "OA.jsp?page=/oracle/apps/per/[mypackages]/MyPagePG&akRegionApplicationId=800", true, hashmap1, "N", true);>> 
But after adding that, if I throw a validation exception (<<throw new OAException(..)>>) it gives me the same old error along with the one I specified in the exception constructor. 
Is there something special about this foward? In other places I use the very same method to redirect to dialog without any problems. 
Any ideas what causes this error? 
-C
 Source: 
<<
 String yes = oapagecontext.getMessage("AK", "FWK_TBX_T_YES", null);
 String no = oapagecontext.getMessage("AK", "FWK_TBX_T_NO", null);
 dialogPage.setOkButtonItemName(okButtonName);
 dialogPage.setNoButtonItemName("No");
 dialogPage.setOkButtonToPost(true);
 dialogPage.setNoButtonToPost(true);
 dialogPage.setPostToCallingPage(true);
 dialogPage.setOkButtonLabel(yes);
 dialogPage.setNoButtonLabel(no);
 java.util.Hashtable formParams = new java.util.Hashtable();
 if(appraisalId!=null){
 formParams.put("AppraisalId", appraisalId);
 }
 if(objectiveId!=null){
 formParams.put("pObjectiveId", objectiveId);
 }
 if(oapagecontext.getParameter("AddAnotherYes")!=null){
 formParams.put("AddAnotherYes", oapagecontext.getParameter("AddAnotherYes"));
 }
 if(oapagecontext.getParameter("ApplyYes")!=null){
 formParams.put("ApplyYes", oapagecontext.getParameter("ApplyYes"));
 }
 formParams.put("event", oapagecontext.getParameter("event"));
 dialogPage.setFormParameters(formParams);
 oapagecontext.redirectToDialogPage(dialogPage);
>>

I found the problem. 
HashMap hashmap = super.getKeyParams(oapagecontext); 
hashmap.put("MyParam1", value) 
hashmap.put("MyParam2", value) 
hashmap.put("MyParam3", value) 
 
As it turns out, "MyParam1" was already pre-populated in the key hashmap and so when I tried to reset it, the framework noticed it was rekeyed and threw the mentioned error. Simply removing the line that inserts that param into the map fixed the problem. 
So, the solution was to use the code inspector in debug mode to crawl the hashmap to see what key params were auto-populated. 
hth, -C

Norton Internet Security cannot scan emails the use SSL. How do I insure that I do not get a virus or malware by opening an email in Thunderbird?

Norton Internet Security cannot scan emails the use SSL. How do I insure that I do not get a virus or malware by opening an email in Thunderbird? I have read that you don't have to click on a link to get malware but that some email can trigger malware just by opening and reading. Any suggestions to keep my emails from triggering malware? AOL Desktop software has it's own built-in email scanner but I'm trying to get away from using their software and rely just on TB.
Thanks

There are many aspects to this question.
First, using SSL or TLS to send and receive email is important because it prevents others from sniffing your email login. Particularly if you are using a device over wi-fi or on untrusted networks, this is critical because if others obtain your email login, bad things can happen.
Of course, using SSL or TLS with your mail server also protects the content of your email from being captured by others, so that's good too.
Second, you are correct that there can be security threats in email other than the attachments, although the attachments generally are the most dangerous. Your antivirus should protect you from bad attachments because in order to open them, they need to be written to disk in a temporary folder, and your AV software leaps into action whenever a new file is added to disk. You also can hedge your bets by using a two-step approach: first save the attachment to disk and only after it survives the real-time AV scan then launch it in the appropriate application.
Sometimes content in the message body can trigger a vulnerability in your email software or a plugin. As these vulnerabilities become known, Mozilla updates its software, but there seem to always be new issues discovered and there will never be perfect security. I'm not sure how helpful email scanning is for this problem.

My mac security cannot find firewall i have disable before how to made it enable thank you

my mac security cannot find firewall
i have disable before how to made it enable
thank you

Hi AngelZulu,
If you are having issues updating iTunes due to security software issues, you may find the following article useful:
iTunes: Troubleshooting security software issues
http://support.apple.com/kb/ts3125
Cheers,
- Brenden

Security Cannot authorize taskflow "VIEW"

I have setup a sql authenticator in Weblogic and built the tables.
I have the login screen, welcome page and a taskflowCall to the menu page. (all ADF)
I can get to the login and back to the welcome screen and navigate to the menu.
I have verified the login user and the roles (POESSA_OWNER, roles: ADMIN, authenticated-role, valid-user)
I have setup the adf security - user - POESSA_OWNER, Enterprise Role: ADMIN Application Role: AppRole1 and assigned ADMIN as a member of the AppRole1.
I then went to the application and assigned AppRole1 to the taskflowCall and checked the view checkbox (default).
In the tables (sql Authenticator) I have a username of POESSA_OWNER, assigned to the role "ADMIN".
When I do the login - I use the authenticator to retrieve the username, roles and authorized (as in some of the examples.
When I do the navigation call to the menu - it fails.
In ADF you cannot use the forwarding - it needs to be calls using taskflows.
So my login is a 'dialog:login' and I use the return handler to navigate based on the result:
I do not use golinks - it is all command buttons and actions.
The testIt routine just prints the user info to the system.out (this is all OK and everything is present (UserName and roles - exactly as expected)
the authenticator is the first in the realm and all are marked "Sufficient" - the interface in the administrator works (I can add, delete, and otherwise manage the data in the tables)
public void handleReturn(ReturnEvent event) {
if (event.getReturnValue() != null) {
FacesContext fContext = FacesContext.getCurrentInstance();
AdfFacesContext.getCurrentInstance().addPartialTarget(getUIComponent("cb1"));
result = event.getReturnValue().toString();
if (result.equals("success")) {
testIt();
Application application = fContext.getApplication();
NavigationHandler navHandler = application.getNavigationHandler();
try {
navHandler.handleNavigation(fContext, null, "enterMenu");
} catch (Exception ex) {
FacesMessage msg = new FacesMessage(FacesMessage.SEVERITY_ERROR, "Authorization Error", "Not Authorized for this function");
fContext.addMessage(null, msg);
The error I get (if not intercepted) says the username is not authorized for the function"VIEW".
Have I missed something? are there issues using the navigation handler?

John,
My apologies - I did not mean to confuse you - I meant there was no need to secure the actual screens (I understood the task flow is what is secured - not the individual items - screens and such).
So in my scenario - where I have a task flow call from the unbound to a bound flow - I would just secure the task flow call.
In my case it is from the welcome screen to the menu page - with the task flow call being "enterMenu".
I would need one security grant (ADMIN) - to the "enterMenu" task flow call - or will I also need another grant on the bound flow itself?
I would assume that the grant on the task flow call would be smart enough to imply the bound task flow has the same level of security.
(Sorry - hard to get the names syntactically correct) - As I understand it - a task flow call terminates with a task flow.
This is what I have done so far.
Am I missing something or should this work.
Remember - I am using a Sql Authenticator to do the login (though it seems to be correct up to the point of the call - there could be issues in the way I have done the security).

Editing the Schedule PDP, at the Page Details Web Part, inserted wrong Project Web App URL. Cannot access Project Schedule Pages.

I need a help. The environment, SharePoint and Project Server 2013 and SQL Server 2012, running on Windows Server 2008. Editing Details Web Part in a Schedule PDP Page, saved invalid Project Web App URL. After that, can display the Project Information and Project
Details Pages from the projects accessed, and can display the Project site, too. But, when I access the Project Schedule Page, receive an error page, because of the invalid URL. The message is obvious: "There
is no Web named xxxxxxx". I´ve tried to find out how to correct this, but no success, because cannot open the Project Schedule page anymore.
I would like to know if there is some way to fix it without re-installing the system. Thanks for all. If somebody need more information, have log information and page display available.

Paul,
When I click Schedule after PWA Settings > Project Details Page, there comes the error.
I can download the Schedule Page. But I don't see where to change, because the wrong URL doesn't apper at the page.
I'm sending below the page that I can download. The schedule.aspx.
<%@ Page language="C#" MasterPageFile="~masterurl/default.master" Inherits="Microsoft.SharePoint.WebPartPages.WebPartPage" %>
<asp:Content ContentPlaceHolderId="PlaceHolderPageTitle" runat="server">
<SharePoint:ListProperty Property="Title" runat="server"/> - <SharePoint:ListItemProperty Property="BaseName" maxlength="40" runat="server"/>
</asp:Content>
<asp:Content ContentPlaceHolderId="PlaceHolderPageTitleInTitleArea" runat="server">
<WebPartPages:WebPartZone runat="server" title="loc:TitleBar" id="TitleBar" AllowLayoutChange="false" AllowPersonalization="false" />
</asp:Content>
<asp:Content ContentPlaceHolderId="PlaceHolderAdditionalPageHead" runat="server">
<meta name="GENERATOR" content="Microsoft SharePoint" />
<meta name="ProgId" content="SharePoint.WebPartPage.Document" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="CollaborationServer" content="SharePoint Team Web Site" />
<script type="text/javascript">
var navBarHelpOverrideKey = "wssmain";
</script>
</asp:Content>
<asp:Content ContentPlaceHolderId="PlaceHolderSearchArea" runat="server" />
<asp:Content ContentPlaceHolderId="PlaceHolderPageDescription" runat="server">
<asp:literal id="idPageDescription" runat="server" text="<%$Resources:PWA,PAGE_DESCRIPTION_SCHEDULE%>" />
</asp:Content>
<asp:Content ContentPlaceHolderId="PlaceHolderPageImage" runat="server"></asp:Content>
<asp:Content ContentPlaceHolderId="PlaceHolderLeftNavBar" runat="server"></asp:Content>
<asp:Content ContentPlaceHolderId="PlaceHolderNavSpacer" runat="server"></asp:Content>
<asp:Content ContentPlaceHolderId="PlaceHolderMain" runat="server">
<WebPartPages:WebPartZone runat="server" Title="loc:FullPage" ID="FullPage" FrameType="TitleBarOnly"/>
</asp:Content>
<asp:Content ContentPlaceHolderID="PlaceHolderUtilityContent" Runat="server">
</asp:Content>
Thanks
LuisPerez

BUG - Cannot enable assertions based on packages

In my runtime configuration (Tools > Project Properties > Run/Debug > Edit...) I tried adding -ea:com.package1... to the Java Options field so I could restrict assertions being run on only that package and subpackages. When I ran my program, the assertions I had written in a class contained in a subpackage of com.package1 would not work. When I take off the :com.package1... and just have -ea in my Java Options, my assertions work just fine.

Hi,
0x803100B2
FVE_E_EDRIVE_INCOMPATIBLE_VOLUME
For Encrypted Hard Drives used as startup drives:
• The drive must be in an uninitialized state.
• The drive must be in a security inactive state.
• The computer must be UEFI 2.3.1 based and have the EFI_STORAGE_SECURITY_COMMAND_PROTOCOL defined. (This protocol is used to allow programs running in the EFI boot services environment to send security protocol commands to the drive).
• The computer must have the Compatibility Support Module (CSM) disabled in UEFI.
• The computer must always boot natively from UEFI.
All Encrypted Hard Drives must be attached to non-RAID controllers to function properly in Windows 8 or Windows Server 2012.
Alex Zhao
TechNet Community Support

Url security issue

Hello All,
here is my problem hopefully someone can help...
i have a globalhome.jsp page that asks general users these are members of the public...to enter an order number and their postcode...to track the status of their order...
this is the code in my jsp page that lets the user log in..
<af:commandButton text="Track Order"
disabled="#{!bindings.ExecuteWithParams.enabled}"
binding="#{backing_webPages_globalHome.commandButton1}"
id="searchButton"
action="#{backing_webPages_globalHome.searchButton_action}"/>
in the java backing bean i have code that basically checks to see if the details are correct then it redirects them to the home.jsp page that shows the order details...
this all works fine...
my problem is...
if i hit a button to back to the globalhome.jsp all the details are cleared from the textboxes (which is correct)
however at this stage where the login page has blank fields...if i type in the url ......../Pages/Home.jsp i am directed to the home page where the previous order details are displayed (which is wrong..)
how can i stop a user from seeing a page if they have not been directed to it through an action behind a button?
hope this makes sense....

i have tried adding the pages into the web-inf folder the same way i created them in the past however when i come to run the page i get a "Webpage cannot be found error"
this is my url ...
http://localhost:8989/xxxxxxx-ViewController-context-root/faces/WEB-INF/pages/test.jsp
do i need to do this in a specific way to hold them in the webinf?

Generate Instantiate URL but cannot open.

Hi,
I've done my interactive form using Adobe Lifecycle, and created a callable object. But when i go under the Object definition tab to generate instantiate URL, and then paste it at the internet explorer.
Generated Url: http://L31019:53000/gpcore/coexec/8C1FA1000B8211DDA257001871691B82/0/2
But it shows nothing when i paste it at the internet explorer. The port is not the port i using, so i changed it to the port i'm using but it shows the error below:
SAP Guided Procedures - Error Page
What happened?
An internal error occurred while processing your request
What can you do?
Try again later. If the problem persists, contact your system administrator.
Additional Error Information
Execution ended in an unrecognized state
com.sap.caf.eu.gp.base.exception.EngineException: Execution ended in an unrecognized state
at com.sap.caf.eu.gp.model.co.execute.impl.CallableObjectExecutorImpl.executeBackground(CallableObjectExecutorImpl.java:242)
at com.sap.caf.eu.gp.model.co.execute.impl.CallableObjectExecutorImpl.execute(CallableObjectExecutorImpl.java:294)
at com.sap.caf.eu.gp.model.co.CallableObjectExecutor.doGet(CallableObjectExecutor.java:256)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
Caused by: com.sap.caf.eu.gp.model.co.tech.TechnicalCallableObjectException: iform032
at com.sap.caf.eu.gp.model.iforms.preproc.FormPreprocessor.execute(FormPreprocessor.java:584)
at com.sap.caf.eu.gp.model.co.background.impl.BackgroundCOExecutorImpl$CallableObjectExecutor.run(BackgroundCOExecutorImpl.java:126)
at com.sap.caf.eu.gp.model.co.background.impl.BackgroundCOExecutorImpl.execute(BackgroundCOExecutorImpl.java:504)
at com.sap.caf.eu.gp.model.co.background.impl.BackgroundCOExecutorImpl.execute(BackgroundCOExecutorImpl.java:581)
at com.sap.caf.eu.gp.model.co.execute.impl.CallableObjectExecutorImpl.executeBackground(CallableObjectExecutorImpl.java:123)
... 18 more
Caused by: com.sap.caf.eu.gp.model.co.tech.TechnicalCallableObjectException: iform032
at com.sap.caf.eu.gp.model.iforms.preproc.FormPreprocessor.execute(FormPreprocessor.java:339)
... 22 more
Sorry for any inconvenence
Can anyone help me? Thanks.
Regards,
Fuzhen

Hi,
From external you only need TCP 443 and UDP 3391 forwarded to your RD Gateway server. You
do not need TCP 3389 or 445 so I recommend you close those ports immediately on your external firewall to avoid problems. If you plan to use HTTP redirection then you can go ahead and open TCP port 80 for
RDWeb, otherwise you should close port 80 as well.
In your RDS Deployment Properties, RD Gateway tab, you should have Use these RD Gateway server settings selected with the public FQDN of your RDG specified, which in your case is the same public FQDN that you are using for RDWeb since
they are on the same server.
After making the above changes, please refresh your RD Web page and test by launching a RemoteApp from an external PC. When launching a RemoteApp you should see a prompt with the Gateway server shown, which should be the FQDN as you specified in deployment
properties. Also on the prompt it should show the FQDN for Remote computer: which should be the FQDN for your broker which in your case can be the same as your RDG. This FQDN should resolve on your private LAN to the private ip address of your
RDCB/RDG/RDWeb server.
Thanks.
-TP

Tracking URL security

We are trying to execute an email campaign with URL tracking links.
When the URL tracking appears in the email it appears with the host
name of the CRM system. For security reasons we need to change the
host name that appears in the tracking URLs so that it does not reflect
the CRM machine host name.
Can anyone advise on how to achieve the desired change?
Many thanks

Experts,
I'm having the same issue. I need to hide my SAP Server from external users.
I'm going to use an Reverse Proxy, but SAP CRM automatically generates the SAP Server address during Campaign Execution.
How can I set SAP Server to generate the Reverse Proxy address instead during Campaign Execution?
Is it possible via HTTPURLLOC?
Thanks in advance

URL-SECURE

Hello
i 'm using oracle 9i developer suite, I am working with forms when I run a form at runtime it displays this kind of information
http://usman.educators.edu.pk:8888/forms90/f90servlet?form=C:\oraprojects\DoubleEntryApp\Register.fmx&userid=SCOTT/TIGER@ali& buffer_records=NO&debug_messages=NO&array=YES&query_only=NO&quiet=NO&RENDER=YES
I want ask a question that how can i remove this information and just see the following url
http://usman.educators.edu.pk:8888/forms90/f90servlet?
because it would make my application secure
THANKS

Hello,
Place all your detail information in a section of your /forms/server/formsweb.cfg file, then call this section on the url:
http://usman.educators.edu.pk:8888/forms90/f90servlet?config=my_section
Francois

Portal URL: Why cannot access via IP address?

When I try to access portal web with IP address, the tree navigation in browse area always shows blank or keep show "loading...".
But after I access the same URL but change it to domain name address, the tree navigation shows correctly.
Could you please explain what is the setting behind this?
Why in some environment we can access directly from IP address?
Thanks !

Hi Erika
you need to update your host file with your EP server host name and IP address
this host file is present in c:/windows/system32/drivers/etc/hosts
open this host file with notepad
and at the bottom give the values like this
<IP address of your EP Server> <EP Server Host Name>
Note:: you need to provide this settings under EP server host--c:/windows/system32/drivers/etc/hosts
Rgds
Srinivas

I can copy a URL, but cannot paste it in the body of an e-mail. Also doen't hypelink it. I do not have this problem using Internet Explorer..

When I copy a URL and go to paste it in an e-mail, it won't paste. Some other box opens. I can paste the URL in the subject line, but doesn't hyperlink it. (blue) When using Internet Explorer, I don't have this problem. I'm new to FF with a new computer.

Did you try to use the keyboard to paste?
* Copy: Ctrl+C or Ctrl+Insert
* Paste: Ctrl+V or Shift+Insert
* Cut: Ctrl+X or Shift+Delete
Just above the textarea that you use to enter the message text on the "Compose New Mail page" there is usually a button bar with buttons to add text formatting like Bold and Italic. 
That toolbar may also have a button to turn a text link into a clickable hyperlink (look for a chain like button). 
You can select the text and click that button to turn the link into a clickable hyperlink. 
If you can't find the button then hover them all to check the tooltip of each (e.g. Insert hyperlink).

Contribute can browse URL but cannot find it in Connection Wizard

Here is some supporting information:
1. I have a fully functional site on a development server
that can be browsed via a standalone browser or via Contribute's
internal browser.
2. I can successfully connect, browse, and ping the site
using the domain name or IP for the address.
3. There is one default file named "index.html".
4. There is no redirection occurring. In other words, the
default file is in the root directory of the site.
5. I have full rights to the server and network share where
the web files reside.
Here's what happens (on a fresh install of Contribute 3.11):
1. I open Contribute.
2. I successfully browse to this particular site.
3. I press the Create Connection button.
4. The Connection Wizard opens and I hit next to enter my
connection information manually.
5. The web address previously entered populates the address
of the Website Home Page screen of the Connection Wizard, so I hit
next.
Here's where the Connection Wizard bombs. It tells me that
Contribute cannot find the website and to make sure that I entered
it correctly or to contact the website administrator for
assistance. The action question is "Would you like to try to
connect to the website anyway?" Hitting "No" closes the wizard.
Hitting "Yes" takes me to the Connection Information screen of the
wizard. I connect via Local/Network and enter the network address
of the share and then hit Next. Contribute returns an error that it
cannot verify my connection information.
However, I can successfully create a connection if I use the
IP address of the site. Although this is possible, it is
undesirable.
Am I missing something here? Any help is greatly appreciated!
Thanks!

Some suggestions/guesses guys
kruss1971 - As the IP address works, but the domain name
doesn't, this is some sort of DNS problem, i.e. a domain name to IP
address conversion issue. I don't know why, but the domain to IP
conversion is working OK to show you the files of the website, but
at the point of verifying that connection the domain to IP
conversion is not working. So, there are two lookups:
1. Domain to IP - to show you the files of the website.
Works, because is done from your local machine.
2. Domain to IP - to verify the connection. Doesn't work -
I'm thinking that maybe this is somehow because the DNS lookup is
occurring from another location, i.e. external to your local
computer, that's the difference, and that's why it doesn't work.
Just a guess. See also:
http://www.adobe.com/support/contribute/connections/webserver_contribute/webserver_contrib ute04.html
I am wondering whether it's because virtual paths on the
server are involved, and these aren't matching up.
Contribute has to drop a file when it verfies the connection
and the address locations all have to match up and this is what
isn't happening.
2) Again I am thinking virtual paths issue here.
Just guesses. Try opening an official support query too.
Rgds
lukaro

URL Security cannot be asserted.

Similar Messages

Maybe you are looking for